Uncontrolled search path element in some Intel(R) VCUST Tool software downloaded before February 3nd 2023 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00844.html | Vendor Advisory |
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00844.html | Vendor Advisory |
Configurations
History
21 Nov 2024, 07:50
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00844.html - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
17 Aug 2023, 20:04
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Intel
Intel vcust Tool |
|
References | (MISC) http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00844.html - Vendor Advisory | |
CPE | cpe:2.3:a:intel:vcust_tool:*:*:*:*:*:*:*:* | |
CWE | CWE-427 |
11 Aug 2023, 03:44
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-11 03:15
Updated : 2024-11-21 07:50
NVD link : CVE-2023-25944
Mitre link : CVE-2023-25944
CVE.ORG link : CVE-2023-25944
JSON object : View
Products Affected
intel
- vcust_tool
CWE
CWE-427
Uncontrolled Search Path Element